CVE-2014-3192

Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Published: Oct 8, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-3192
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
redhat / enterprise_linux_desktop_supplementary	6.0	6.0.x
redhat / enterprise_linux_server_supplementary	6.0	6.0.x
redhat / enterprise_linux_workstation_supplementary	6.0	6.0.x
redhat / enterprise_linux_server_supplementary_eus	6.6.z	6.6.z.x
apple / safari	8.0.2	8.0.2.x
apple / safari	6.2.2	6.2.2.x
apple / iphone_os	-	8.1.2.x
apple / itunes	-	12.1.3.x
apple / safari	7.1.2	7.1.2.x
apple / tvos	-	7.0.1.x
google / chrome	-	38.0.2125.7.x

http://googlechromereleases.blogspot.com/2014/10/stable-channel-update.html
http://lists.apple.com/archives/security-announce/2015/Jan/msg00000.html
http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html
http://lists.apple.com/archives/security-announce/2015/Jan/msg00002.html
http://lists.apple.com/archives/security-announce/2015/Jun/msg00006.html
http://rhn.redhat.com/errata/RHSA-2014-1626.html
http://support.apple.com/HT204243
http://support.apple.com/HT204245
http://support.apple.com/HT204246
http://www.securityfocus.com/bid/70273
http://www.securitytracker.com/id/1031647
https://crbug.com/403276
https://src.chromium.org/viewvc/blink?revision=182309&view=revision
https://support.apple.com/kb/HT204949

Vulnerability Database

289,697

CVE-2014-3192